Flow records aggregation
Closed this issue · 4 comments
The topic of flow aggregation was opened by @whitetiger21022014 as a PR...
However, it is highly relevant so let's move the discussion here.
The question: #27 (comment)
My response: #27 (comment)
@cejkato2
Thank for your time and Top-n module, last question
May I compile topn, logger module in OpenWRT ?
May I compile tunnel_detection module (Nemea-Detectors) in OpenWRT ?
I think it should be possible but it will take some effort... We would be glad for any help so let me explain some principles of compiling NEMEA for OpenWrt.
The basic info should be at http://nemea.liberouter.org/openwrt/:
- clone OpenWrt 15.05
- add NEMEA feed using the guide in README: https://github.com/CESNET/Nemea-OpenWRT/
- select NEMEA packages in
menuconfigof OpenWrt make
That was about compilation of our version.
You will need some modifications so let me show you so internals.
After adding the feed, there are feeds/nemea/libs/nemea-framework and feeds/nemea/utils/nemea-modules/ in your openwrt directory.
To add topn and logger, you will need to change https://github.com/CESNET/Nemea-OpenWRT/blob/master/utils/nemea-modules/Makefile#L12 that defines git revision.
There is also a patch https://github.com/CESNET/Nemea-OpenWRT/blob/master/utils/nemea-modules/patches/001-removemodules.patch that modifies a set of modules to compile.
I think the topn module should be easier to add because it has no special dependencies.
In the past, logger used openmp but as I'm looking into repo, it is already rewritten so it uses "just" pthread -> it should be fine now.
Please, let us know if you make some progress... Thanks in advance.
@cejkato2
Thanks you so much
With flow_meter module, it will be great if it supports BPF filter option when capturing live interface